2010-07-01 23:48:07 +00:00
< ? php
2018-01-21 16:38:01 +00:00
/**
2018-02-15 20:10:00 +00:00
* @ file mod / register . php
2018-01-21 16:38:01 +00:00
*/
2018-01-25 02:08:45 +00:00
2017-04-30 04:07:00 +00:00
use Friendica\App ;
2018-02-15 02:33:55 +00:00
use Friendica\Content\Text\BBCode ;
2018-01-17 18:42:40 +00:00
use Friendica\Core\Addon ;
2017-11-07 02:22:52 +00:00
use Friendica\Core\Config ;
2018-01-21 16:38:01 +00:00
use Friendica\Core\L10n ;
2017-11-07 02:22:52 +00:00
use Friendica\Core\PConfig ;
2017-08-26 06:04:21 +00:00
use Friendica\Core\System ;
2017-11-05 12:15:53 +00:00
use Friendica\Core\Worker ;
2018-07-23 22:44:05 +00:00
use Friendica\Database\DBA ;
2017-12-04 03:29:06 +00:00
use Friendica\Model\User ;
2018-05-19 16:53:54 +00:00
use Friendica\Module\Tos ;
2018-01-27 02:38:34 +00:00
use Friendica\Util\DateTimeFormat ;
2017-04-30 04:07:00 +00:00
2017-12-04 03:15:31 +00:00
require_once 'include/enotify.php' ;
2013-01-04 23:47:29 +00:00
2017-12-09 00:24:43 +00:00
function register_post ( App $a )
{
2017-05-06 12:49:53 +00:00
check_form_security_token_redirectOnErr ( '/register' , 'register' );
2010-07-01 23:48:07 +00:00
$verified = 0 ;
$blocked = 1 ;
2018-01-15 13:05:12 +00:00
$arr = [ 'post' => $_POST ];
2018-01-17 18:42:40 +00:00
Addon :: callHooks ( 'register_post' , $arr );
2011-12-21 04:12:29 +00:00
2017-12-09 00:24:43 +00:00
$max_dailies = intval ( Config :: get ( 'system' , 'max_daily_registrations' ));
if ( $max_dailies ) {
2011-12-21 04:12:29 +00:00
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
2017-12-09 00:24:43 +00:00
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
2011-12-21 04:12:29 +00:00
return ;
}
}
2018-07-07 21:46:30 +00:00
switch ( Config :: get ( 'config' , 'register_policy' )) {
2017-12-09 00:24:43 +00:00
case REGISTER_OPEN :
$blocked = 0 ;
$verified = 1 ;
break ;
case REGISTER_APPROVE :
$blocked = 1 ;
$verified = 0 ;
break ;
default :
case REGISTER_CLOSED :
2018-07-07 21:46:30 +00:00
if ( empty ( $_SESSION [ 'authenticated' ]) && empty ( $_SESSION [ 'administrator' ])) {
2018-01-21 18:33:59 +00:00
notice ( L10n :: t ( 'Permission denied.' ) . EOL );
2017-12-09 00:24:43 +00:00
return ;
}
$blocked = 1 ;
$verified = 0 ;
break ;
2010-07-01 23:48:07 +00:00
}
2014-09-07 10:29:13 +00:00
2018-02-12 03:10:11 +00:00
$netpublish = ! empty ( $_POST [ 'profile_publish_reg' ]);
2010-07-01 23:48:07 +00:00
2012-06-01 22:42:13 +00:00
$arr = $_POST ;
$arr [ 'blocked' ] = $blocked ;
$arr [ 'verified' ] = $verified ;
2018-01-21 16:38:01 +00:00
$arr [ 'language' ] = L10n :: getBrowserLanguage ();
2012-06-01 22:42:13 +00:00
2017-12-13 01:43:21 +00:00
try {
$result = User :: create ( $arr );
} catch ( Exception $e ) {
notice ( $e -> getMessage ());
2010-07-01 23:48:07 +00:00
return ;
}
2012-06-01 02:06:17 +00:00
$user = $result [ 'user' ];
2014-09-07 10:29:13 +00:00
2018-07-15 19:04:48 +00:00
if ( $netpublish && intval ( Config :: get ( 'config' , 'register_policy' )) !== REGISTER_APPROVE ) {
2017-08-26 07:32:10 +00:00
$url = System :: baseUrl () . '/profile/' . $user [ 'nickname' ];
2017-11-18 07:59:30 +00:00
Worker :: add ( PRIORITY_LOW , " Directory " , $url );
2011-02-23 22:04:00 +00:00
}
2017-12-09 00:24:43 +00:00
$using_invites = Config :: get ( 'system' , 'invitation_only' );
$num_invites = Config :: get ( 'system' , 'number_invites' );
$invite_id = (( x ( $_POST , 'invite_id' )) ? notags ( trim ( $_POST [ 'invite_id' ])) : '' );
2011-02-23 22:04:00 +00:00
2018-07-15 19:04:48 +00:00
if ( intval ( Config :: get ( 'config' , 'register_policy' )) === REGISTER_OPEN ) {
2017-12-09 00:24:43 +00:00
if ( $using_invites && $invite_id ) {
2018-07-21 13:10:13 +00:00
q ( " delete * from register where hash = '%s' limit 1 " , DBA :: escape ( $invite_id ));
2017-12-09 00:24:43 +00:00
PConfig :: set ( $user [ 'uid' ], 'system' , 'invites_remaining' , $num_invites );
2011-07-18 04:12:31 +00:00
}
2015-06-30 21:37:31 +00:00
// Only send a password mail when the password wasn't manually provided
2017-12-09 00:24:43 +00:00
if ( ! x ( $_POST , 'password1' ) || ! x ( $_POST , 'confirm' )) {
2017-12-04 03:29:06 +00:00
$res = User :: sendRegisterOpenEmail (
2018-07-07 21:46:30 +00:00
$user [ 'email' ], Config :: get ( 'config' , 'sitename' ), System :: baseUrl (), $user [ 'username' ], $result [ 'password' ]);
2017-12-09 00:24:43 +00:00
if ( $res ) {
2018-01-22 14:16:25 +00:00
info ( L10n :: t ( 'Registration successful. Please check your email for further instructions.' ) . EOL );
2017-08-26 07:32:10 +00:00
goaway ( System :: baseUrl ());
2015-06-30 21:37:31 +00:00
} else {
notice (
2018-01-22 14:16:25 +00:00
L10n :: t ( 'Failed to send email message. Here your accout details:<br> login: %s<br> password: %s<br><br>You can change your password after login.' ,
2017-12-09 00:24:43 +00:00
$user [ 'email' ],
$result [ 'password' ])
. EOL
2015-06-30 21:37:31 +00:00
);
}
2015-11-14 07:07:09 +00:00
} else {
2018-01-22 14:16:25 +00:00
info ( L10n :: t ( 'Registration successful.' ) . EOL );
2017-08-26 07:32:10 +00:00
goaway ( System :: baseUrl ());
2010-07-29 06:15:10 +00:00
}
2018-07-15 19:04:48 +00:00
} elseif ( intval ( Config :: get ( 'config' , 'register_policy' )) === REGISTER_APPROVE ) {
2018-07-07 21:46:30 +00:00
if ( ! strlen ( Config :: get ( 'config' , 'admin_email' ))) {
2018-01-21 18:33:59 +00:00
notice ( L10n :: t ( 'Your registration can not be processed.' ) . EOL );
2017-08-26 07:32:10 +00:00
goaway ( System :: baseUrl ());
2010-07-29 06:15:10 +00:00
}
$hash = random_string ();
2016-11-19 17:22:49 +00:00
$r = q ( " INSERT INTO `register` ( `hash`, `created`, `uid`, `password`, `language`, `note` ) VALUES ( '%s', '%s', %d, '%s', '%s', '%s' ) " ,
2018-07-21 13:10:13 +00:00
DBA :: escape ( $hash ),
DBA :: escape ( DateTimeFormat :: utcNow ()),
2012-06-01 02:06:17 +00:00
intval ( $user [ 'uid' ]),
2018-07-21 13:10:13 +00:00
DBA :: escape ( $result [ 'password' ]),
DBA :: escape ( Config :: get ( 'system' , 'language' )),
DBA :: escape ( $_POST [ 'permonlybox' ])
2011-05-24 03:30:37 +00:00
);
2014-09-07 11:55:02 +00:00
// invite system
2017-12-09 00:24:43 +00:00
if ( $using_invites && $invite_id ) {
2018-07-21 13:10:13 +00:00
q ( " DELETE * FROM `register` WHERE `hash` = '%s' LIMIT 1 " , DBA :: escape ( $invite_id ));
2017-12-09 00:24:43 +00:00
PConfig :: set ( $user [ 'uid' ], 'system' , 'invites_remaining' , $num_invites );
2011-07-18 04:12:31 +00:00
}
2010-07-29 06:15:10 +00:00
2014-09-07 11:55:02 +00:00
// send email to admins
2018-07-21 13:10:13 +00:00
$admin_mail_list = " ' " . implode ( " ',' " , array_map ([ 'Friendica\Database\DBA' , 'escape' ], explode ( " , " , str_replace ( " " , " " , Config :: get ( 'config' , 'admin_email' ))))) . " ' " ;
2014-09-07 12:23:03 +00:00
$adminlist = q ( " SELECT uid, language, email FROM user WHERE email IN (%s) " ,
2014-09-07 11:55:02 +00:00
$admin_mail_list
);
2011-05-24 03:30:37 +00:00
2016-11-18 19:16:22 +00:00
// send notification to admins
2016-09-30 12:57:16 +00:00
foreach ( $adminlist as $admin ) {
2018-01-15 13:05:12 +00:00
notification ([
2017-12-09 00:24:43 +00:00
'type' => NOTIFY_SYSTEM ,
'event' => 'SYSTEM_REGISTER_REQUEST' ,
'source_name' => $user [ 'username' ],
'source_mail' => $user [ 'email' ],
'source_nick' => $user [ 'nickname' ],
'source_link' => System :: baseUrl () . " /admin/users/ " ,
'link' => System :: baseUrl () . " /admin/users/ " ,
'source_photo' => System :: baseUrl () . " /photo/avatar/ " . $user [ 'uid' ] . " .jpg " ,
'to_email' => $admin [ 'email' ],
'uid' => $admin [ 'uid' ],
'language' => $admin [ 'language' ] ? $admin [ 'language' ] : 'en' ,
2016-09-30 12:57:16 +00:00
'show_in_notification_page' => false
2018-01-15 13:05:12 +00:00
]);
2016-09-30 12:57:16 +00:00
}
2016-11-18 19:16:22 +00:00
// send notification to the user, that the registration is pending
2017-12-04 03:29:06 +00:00
User :: sendRegisterPendingEmail (
2018-07-07 21:46:30 +00:00
$user [ 'email' ], Config :: get ( 'config' , 'sitename' ), $user [ 'username' ]);
2016-09-30 12:57:16 +00:00
2018-01-22 14:16:25 +00:00
info ( L10n :: t ( 'Your registration is pending approval by the site owner.' ) . EOL );
2017-08-26 07:32:10 +00:00
goaway ( System :: baseUrl ());
2011-02-23 09:37:15 +00:00
}
2010-07-01 23:48:07 +00:00
return ;
2017-12-09 00:24:43 +00:00
}
2010-07-01 23:48:07 +00:00
2017-12-09 00:24:43 +00:00
function register_content ( App $a )
{
2010-10-18 03:04:17 +00:00
// logged in users can register others (people/pages/groups)
// even with closed registrations, unless specifically prohibited by site policy.
// 'block_extended_register' blocks all registrations, period.
2017-12-09 00:24:43 +00:00
$block = Config :: get ( 'system' , 'block_extended_register' );
2010-10-18 03:04:17 +00:00
2017-12-09 00:24:43 +00:00
if ( local_user () && ( $block )) {
2011-12-10 00:50:13 +00:00
notice ( " Permission denied. " . EOL );
return ;
}
2018-07-15 19:04:48 +00:00
if (( ! local_user ()) && ( intval ( Config :: get ( 'config' , 'register_policy' )) === REGISTER_CLOSED )) {
2010-07-11 10:35:33 +00:00
notice ( " Permission denied. " . EOL );
return ;
}
2017-12-09 00:24:43 +00:00
$max_dailies = intval ( Config :: get ( 'system' , 'max_daily_registrations' ));
if ( $max_dailies ) {
2011-12-21 04:12:29 +00:00
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
2017-12-09 00:24:43 +00:00
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
2011-12-21 04:12:29 +00:00
logger ( 'max daily registrations exceeded.' );
2018-01-21 18:33:59 +00:00
notice ( L10n :: t ( 'This site has exceeded the number of allowed daily account registrations. Please try again tomorrow.' ) . EOL );
2011-12-21 04:12:29 +00:00
return ;
}
}
2017-12-09 00:24:43 +00:00
if ( x ( $_SESSION , 'theme' )) {
2011-01-07 12:33:34 +00:00
unset ( $_SESSION [ 'theme' ]);
2017-12-09 00:24:43 +00:00
}
if ( x ( $_SESSION , 'mobile-theme' )) {
2012-09-06 23:24:34 +00:00
unset ( $_SESSION [ 'mobile-theme' ]);
2017-12-09 00:24:43 +00:00
}
2011-01-07 12:33:34 +00:00
2017-12-09 00:24:43 +00:00
$username = x ( $_REQUEST , 'username' ) ? $_REQUEST [ 'username' ] : '' ;
$email = x ( $_REQUEST , 'email' ) ? $_REQUEST [ 'email' ] : '' ;
$openid_url = x ( $_REQUEST , 'openid_url' ) ? $_REQUEST [ 'openid_url' ] : '' ;
$nickname = x ( $_REQUEST , 'nickname' ) ? $_REQUEST [ 'nickname' ] : '' ;
$photo = x ( $_REQUEST , 'photo' ) ? $_REQUEST [ 'photo' ] : '' ;
$invite_id = x ( $_REQUEST , 'invite_id' ) ? $_REQUEST [ 'invite_id' ] : '' ;
2010-11-16 04:10:19 +00:00
2017-12-09 00:24:43 +00:00
$noid = Config :: get ( 'system' , 'no_openid' );
2010-11-29 04:58:23 +00:00
2017-12-09 00:24:43 +00:00
if ( $noid ) {
$oidhtml = '' ;
2010-11-29 04:58:23 +00:00
$fillwith = '' ;
2017-12-09 00:24:43 +00:00
$fillext = '' ;
2010-11-29 04:58:23 +00:00
$oidlabel = '' ;
2017-12-09 00:24:43 +00:00
} else {
$oidhtml = '<label for="register-openid" id="label-register-openid" >$oidlabel</label><input type="text" maxlength="60" size="32" name="openid_url" class="openid" id="register-openid" value="$openid" >' ;
2018-01-22 14:16:25 +00:00
$fillwith = L10n :: t ( " You may \x28 optionally \x29 fill in this form via OpenID by supplying your OpenID and clicking 'Register'. " );
$fillext = L10n :: t ( 'If you are not familiar with OpenID, please leave that field blank and fill in the rest of the items.' );
$oidlabel = L10n :: t ( " Your OpenID \x28 optional \x29 : " );
2010-11-29 04:58:23 +00:00
}
2011-03-11 22:48:58 +00:00
// I set this and got even more fake names than before...
2018-01-22 14:16:25 +00:00
$realpeople = '' ; // L10n::t('Members of this network prefer to communicate with real people who use their real names.');
2011-03-08 12:06:37 +00:00
2017-12-09 00:24:43 +00:00
if ( Config :: get ( 'system' , 'publish_all' )) {
$profile_publish = '<input type="hidden" name="profile_publish_reg" value="1" />' ;
} else {
2011-05-11 11:37:13 +00:00
$publish_tpl = get_markup_template ( " profile_publish.tpl " );
2018-01-15 13:05:12 +00:00
$profile_publish = replace_macros ( $publish_tpl , [
2017-12-09 00:24:43 +00:00
'$instance' => 'reg' ,
2018-01-22 14:16:25 +00:00
'$pubdesc' => L10n :: t ( 'Include your profile in member directory?' ),
2018-05-26 05:09:32 +00:00
'$yes_selected' => '' ,
'$no_selected' => ' checked="checked"' ,
2018-01-22 14:16:25 +00:00
'$str_yes' => L10n :: t ( 'Yes' ),
'$str_no' => L10n :: t ( 'No' ),
2018-01-15 13:05:12 +00:00
]);
2011-02-22 00:50:06 +00:00
}
2017-12-09 00:24:43 +00:00
$r = q ( " SELECT COUNT(*) AS `contacts` FROM `contact` " );
2015-06-30 21:37:31 +00:00
$passwords = ! $r [ 0 ][ " contacts " ];
2011-09-24 12:45:34 +00:00
$license = '' ;
2010-12-25 04:23:49 +00:00
2018-01-08 00:10:09 +00:00
$tpl = get_markup_template ( " register.tpl " );
2012-03-31 13:15:33 +00:00
2018-01-15 13:05:12 +00:00
$arr = [ 'template' => $tpl ];
2012-03-31 13:15:33 +00:00
2018-01-17 18:42:40 +00:00
Addon :: callHooks ( 'register_form' , $arr );
2012-03-31 13:15:33 +00:00
2018-01-08 00:10:09 +00:00
$tpl = $arr [ 'template' ];
2012-09-22 01:04:09 +00:00
2018-05-19 16:53:54 +00:00
$tos = new Tos ();
2018-01-08 00:10:09 +00:00
$o = replace_macros ( $tpl , [
2010-11-29 04:58:23 +00:00
'$oidhtml' => $oidhtml ,
2017-12-09 00:24:43 +00:00
'$invitations' => Config :: get ( 'system' , 'invitation_only' ),
2018-07-15 19:04:48 +00:00
'$permonly' => intval ( Config :: get ( 'config' , 'register_policy' )) === REGISTER_APPROVE ,
2018-01-22 14:16:25 +00:00
'$permonlybox' => [ 'permonlybox' , L10n :: t ( 'Note for the admin' ), '' , L10n :: t ( 'Leave a message for the admin, why you want to join this node' )],
'$invite_desc' => L10n :: t ( 'Membership on this site is by invitation only.' ),
2018-03-01 19:29:01 +00:00
'$invite_label' => L10n :: t ( 'Your invitation code: ' ),
2017-12-09 00:24:43 +00:00
'$invite_id' => $invite_id ,
2011-03-08 12:06:37 +00:00
'$realpeople' => $realpeople ,
2018-01-22 14:16:25 +00:00
'$regtitle' => L10n :: t ( 'Registration' ),
2018-04-02 06:42:11 +00:00
'$registertext' => BBCode :: convert ( Config :: get ( 'config' , 'register_text' , '' )),
2010-11-29 04:58:23 +00:00
'$fillwith' => $fillwith ,
'$fillext' => $fillext ,
'$oidlabel' => $oidlabel ,
2010-11-18 04:35:50 +00:00
'$openid' => $openid_url ,
2018-01-22 14:16:25 +00:00
'$namelabel' => L10n :: t ( 'Your Full Name ' . " \x28 " . 'e.g. Joe Smith, real or real-looking' . " \x29 " . ': ' ),
2018-01-24 21:51:32 +00:00
'$addrlabel' => L10n :: t ( " Your Email Address: \x28 Initial information will be send there, so this has to be an existing address. \x29 " ),
2015-06-30 21:37:31 +00:00
'$passwords' => $passwords ,
2018-01-22 14:16:25 +00:00
'$password1' => [ 'password1' , L10n :: t ( 'New Password:' ), '' , L10n :: t ( 'Leave empty for an auto generated password.' )],
'$password2' => [ 'confirm' , L10n :: t ( 'Confirm:' ), '' , '' ],
'$nickdesc' => L10n :: t ( 'Choose a profile nickname. This must begin with a text character. Your profile address on this site will then be \'<strong>nickname@%s</strong>\'.' , $a -> get_hostname ()),
'$nicklabel' => L10n :: t ( 'Choose a nickname: ' ),
2010-11-24 04:56:20 +00:00
'$photo' => $photo ,
2011-02-22 00:50:06 +00:00
'$publish' => $profile_publish ,
2018-01-22 14:16:25 +00:00
'$regbutt' => L10n :: t ( 'Register' ),
2010-11-16 04:10:19 +00:00
'$username' => $username ,
'$email' => $email ,
'$nickname' => $nickname ,
2010-12-25 04:23:49 +00:00
'$license' => $license ,
2012-10-17 15:13:01 +00:00
'$sitename' => $a -> get_hostname (),
2018-01-22 14:16:25 +00:00
'$importh' => L10n :: t ( 'Import' ),
'$importt' => L10n :: t ( 'Import your profile to this friendica instance' ),
2018-04-02 16:40:30 +00:00
'$showtoslink' => Config :: get ( 'system' , 'tosdisplay' ),
'$tostext' => L10n :: t ( 'Terms of Service' ),
2018-05-19 16:53:54 +00:00
'$showprivstatement' => Config :: get ( 'system' , 'tosprivstatement' ),
2018-05-20 06:43:43 +00:00
'$privstatement' => $tos -> privacy_complete ,
2018-04-02 16:40:30 +00:00
'$baseurl' => System :: baseurl (),
2018-07-14 16:08:06 +00:00
'$form_security_token' => get_form_security_token ( " register " ),
'$explicit_content' => Config :: get ( 'system' , 'explicit_content' , false ),
'$explicit_content_note' => L10n :: t ( 'Note: This node explicitly contains adult content' )
2017-12-09 00:24:43 +00:00
]);
2010-07-01 23:48:07 +00:00
return $o ;
2017-12-09 00:24:43 +00:00
}